Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12C97C708C5A11EF942D9EA2762E951A.roa
File: 12C97C708C5A11EF942D9EA2762E951A.roa (raw, json)
Hash identifier: lrj9yNRd2YBUUjx+hTQwW5F5XrfHxZMZKzmgP3vAf8I=
Subject key identifier: 30:1F:AE:CB:7C:91:37:8A:F8:9F:91:A8:F1:2B:87:45:6E:6A:23:40
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C5B1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12C97C708C5A11EF942D9EA2762E951A.roa
Signing time: Thu 17 Oct 2024 07:33:16 +0000
ROA not before: Thu 17 Oct 2024 07:33:13 +0000
ROA not after: Sun 19 Oct 2025 07:33:13 +0000
asID: 149628
IP address blocks: 156.226.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50609 (0xc5b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 17 07:33:13 2024 GMT
Not After : Oct 19 07:33:13 2025 GMT
Subject: CN=6710bdbc-62bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3b:a8:9b:31:97:22:e9:2b:b6:fe:91:8c:c9:
d2:53:9a:f4:46:5a:c2:2e:93:56:a8:4b:76:7b:1f:
6a:3d:9a:c8:1b:63:7e:41:cd:59:1b:cf:a9:f0:21:
55:31:08:85:7d:a3:7d:ca:3b:5e:94:6d:d5:44:c4:
7f:22:dd:04:eb:31:76:b7:5c:c1:82:8e:72:09:a3:
1b:22:b5:54:bf:ad:00:b4:e8:a6:8a:16:fa:62:74:
f2:dc:29:32:0b:41:28:17:25:14:be:89:6f:0f:41:
65:50:10:ac:9d:0b:35:88:58:81:b4:82:62:da:42:
c9:5c:71:6e:18:fb:67:d5:b8:de:3e:31:56:e3:57:
0a:f2:f4:16:54:fd:06:65:cd:b9:17:1d:6c:63:05:
7d:23:9c:6c:c9:01:d7:46:04:9c:5b:11:27:14:54:
fd:2c:cb:ba:ff:fe:c1:7b:ae:84:c3:fb:c2:8d:cd:
d2:61:f2:16:82:5b:bb:2f:d5:3b:86:0a:31:56:5f:
95:67:05:43:ad:f7:51:58:b9:25:32:0e:12:d1:43:
f5:d1:78:ab:55:bb:89:ff:69:e4:b8:cd:5e:4c:34:
d3:ce:86:fc:80:38:07:c6:09:a2:e5:67:df:c4:19:
7c:16:38:18:dc:e9:80:85:50:7e:fd:8d:5e:fc:ce:
19:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1F:AE:CB:7C:91:37:8A:F8:9F:91:A8:F1:2B:87:45:6E:6A:23:40
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12C97C708C5A11EF942D9EA2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.6.0/24
Signature Algorithm: sha256WithRSAEncryption
57:cd:db:ed:9a:c9:49:f7:01:f9:8a:8e:3b:27:30:70:af:17:
3f:e6:fd:c0:2f:f5:8f:cf:0a:95:db:9f:44:18:a2:05:59:6e:
ce:57:35:fa:f8:0a:f8:6f:48:c5:7c:3e:50:e2:12:2f:ba:fd:
a7:30:a5:3b:4b:e2:cf:cc:74:5d:09:66:19:d7:cd:e6:aa:4a:
2e:d6:9f:12:cc:8d:cf:54:1d:49:67:ca:a3:ca:d8:6f:a5:30:
8f:9f:05:6f:30:83:57:75:cc:93:97:24:5e:d0:72:55:0a:72:
6c:cb:a6:ae:af:58:a7:e0:dc:fa:d2:cf:52:57:14:a3:7c:ba:
52:cd:e9:43:f0:97:82:de:62:8b:4b:d0:65:d1:8c:21:94:93:
6e:6d:82:64:d6:39:8b:c0:d2:c6:1b:ce:cc:62:89:4b:5a:3f:
a9:bb:d3:97:66:72:dd:6a:f8:96:de:55:ff:8e:fd:a9:ad:a7:
df:4d:06:f2:89:bf:c4:07:4e:85:e6:ce:26:11:74:8e:d3:eb:
69:ea:6c:f7:56:19:24:5f:23:e6:cc:aa:c1:c7:b4:1b:1f:d0:
1d:18:55:bb:12:94:45:d1:9a:b6:b0:f8:12:b6:3c:4e:51:f9:
d0:3f:3e:0d:61:59:49:d9:d7:db:b4:b8:3d:c4:07:46:32:8e:
16:06:cc:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:20 2024 by rpki-client on console-ams.rpki-client.org